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DETAILED ACTION 



Claim Objections 



1 . Claim 7 is objected to because of the following informalities: Applicant is respectfully 
suggested to be consistent in using terminologies, for example in line 7 and 10-1 1, the limitation, 
"a solicitation" (lines 10-1 1) is suggested to change to — the solicitation — for clearly referring 
to the cited limitation "a solicitation" in line 7. 
Appropriate correction is required. 



2. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 



3. Claims 1-13 are rejected under 35 U.S.C. 103(a) as being unpatentable over Miloslavsky 
(U.S.6,418,146) in view of Fuh et al. (U.S.6,463,474). 

- In regard to claim 1, Miloslavsky discloses in Figs. 1-4 and in the respective portions of 
the specification about the wireless access protocol service provider 'WAP-SP' ("WAN 
gateway"), e.g. enhanced proxy server, providing access to Internet data for WAP-enabled 
appliances enhanced with software, for facilitating telephony calls via wireless network 



Claim Rejections - 35 USC § 103 
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("wireless telephone network") in communicating with Web sites, e.g. Web servers ("wide-area 
network servers"), through the WAP-SP (For example see Fig. 1; Abstract); wherein the WAP 
device (^mobile terminal") must log in to the WAPSP via the authentication process ("not 
previously logged in to the server"; For example see Figs. 3-4; Col. 13, Lines 11-15; Col. 11, 
Lines 60-65) and where the user's profile data is stored in the repository and forwarded to the 
web server ("storing the information and forwarding to the server"; For example see Col. 13, 
Lines 16-20, 64-67; Col. 10, Lines 4-12). Once authenticated, the WAP device may access 
services ("previously logged in to the server"), where the profile data is retrieved from the data 
repository for sending with the call to the web server ("retrieving the stored login information 
and forwarding to the server"; For example see Figs. 3-4; Col. 13, Lines 16-20, 64-67; Col. 10, 
Lines 4-12; Col. 11, Line 66 through Col. 12, Line 5). Miloslavsky does disclose about the 
authentication method and the login process, but fails to specifically disclose the step of method 
of "determining whether" the user has already or not yet logged in to the server. However, such 
implementation is known in the art. 

For example, Fuh discloses in Figs 2-4 and 7A-B and in the respective portions of the 
specification about the method and firewall router ("WAN gateway") that provide network access 
control and locally authenticate the client to reduce network traffic to the authentication server, 
by comparing information identifying the client to the authentication cache information stored in 
the network device (For example see Abstract); wherein the firewall router with the 
authentication caches, through the use of Authentication proxy and filtering mechanism, 
determines whether the user is already or not yet authenticated ("determining whether the user 
has already or not yet logged in to the server"). If the user is not yet authenticated ("not 
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previously logged in to the server"; See details in Fig. 7B), the login form (See Fig. 5A) is 
provided to the user and the received login information is sent to the AAA server for performing 
authentication and authorization services, stored in the authentication caches and sent to the 
target server (^storing the information and forwarding to the server" \ and if the user is already 
authenticated ^previously logged in to the server" \ See details in Fig. 7 A, steps 710-712), the 
user profile is stored and retrieved in the form of proxy-access list, and sent to the target server 
(^retrieving the stored login information and forwarding to the server") as disclosed in Col. 9, 
Line 1 through Col. 15, Line 55. 

Thus it would have been obvious to the person of ordinary skill in the art at the time of 
the invention was made to combine the invention as taught by Fuh, by implementing the 
firewall's authentication process with the use of authentication caches, Authentication proxy and 
filtering mechanism into the authentication process of the WAP-SP, i.e. the enhanced proxy 
server, as taught by Miloslavsky, with the motivation being to improve the ability to provide 
network access control and locally authenticate the client in reducing network traffic to the 
authentication server. 

- Regarding claims 2, 4-6, 8 and 1 1-13, Miloslavsky further discloses about the WAN is 
Internet (For example see Fig. 1; Col. 5, Lines 14-22), the login information comprises the 
username and password (For example see Col. 9, Lines 64-67), user is identified according to the 
telephone number (For example see Col. 6, Lines 1-7; Col. 8, Lines 4-16; wherein the user is 
identified according to his/her cell phone or fixed wireless telephone) and the server is identified 
according to its uniform resource locator 'URL' (For example see Col. 5, Lines 23-50; wherein 
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the server is identified according to its URL through the server web page, where the user 
connects to the web page server via the network navigation software, i.e. WEB browser (For 
example see Col. 5, Lines 23-50). 

- In regard to claims 3 and 9-10, Miloslavsky further discloses about the means for 
updating the request data coordinating with any additional data requirements during an ongoing 
call (^'modifying the login information by the user and forwarding to the gateway"', For example 
see Col. 12, Lines 49-59; wherein various interaction paths of communication between WAP 
users and communication center, i.e. as disclose in details of WAP II and III in connection with 
WAP-SP, with additional profile data and routing options. It is also obvious that the user can 
modify the user name and password for different login process for different server connections, 
e.g. web page servers, via the network navigation software, i.e. WEB browser) and where the 
modification is stored in the caches ^storing the modified information") for authentication with 
the corresponding situations. 

- Regarding claim 7, Miloslavsky discloses in Figs. 1-4 and in the respective portions of 
the specification about the wireless access protocol service provider 'WAP-SP' ('WAN 
gateway"), e.g. enhanced proxy server, providing access to Internet data for WAP-enabled 
appliances enhanced with software, for facilitating telephony calls via wireless network 
("wireless telephone network") in communicating with Web sites, e.g. Web servers ("wide-area 
network servers"), through the WAP-SP (For example see Fig. 1; Abstract); wherein the data 
repository ("data store") stores the user data information for authentication process (For example 
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see Col. 7, Lines 26-34; Col. 8, Lines 17-27), wherein the WAP device (^mobile terminal) must 
log in to the WAPSP via the authentication process ("not previously logged in to the server"; For 
example see Figs. 3-4; Col. 13, Lines 11-15; Col. 11, Lines 60-65) and where the user's profile 
data is stored in the repository and forwarded to the web server ("storing the information and 
forwarding to the server"; For example see Col. 13, Lines 16-20, 64-67; Col. 10, Lines 4-12). 
Once authenticated, the WAP device may access services (^previously logged in to the server"), 
where the profile data is retrieved from the data repository for sending with the call to the web 
server (^retrieving the stored login information and forwarding to the server"; For example see 
Figs. 3-4; Col. 13, Lines 16-20, 64-67; Col. 10, Lines 4-12; Col. 11, Line 66 through Col. 12, 
Line 5). Miloslavsky does disclose about the authentication method and the login process, but 
fails to specifically disclose the step of method of "determining whether" the user has already or 
not yet logged in to the server. However, such implementation is known in the art. 

For example, Fuh discloses in Figs 2-4 and 7A-B and in the respective portions of the 
specification about the method and firewall router (^ WAN gateway") that provide network access 
control and locally authenticate the client to reduce network traffic to the authentication server, 
by comparing information identifying the client to the authentication cache information stored in 
the network device (For example see Abstract); wherein the firewall router with the 
authentication caches, through the use of Authentication proxy and filtering mechanism, 
determines whether the user is already or not yet authenticated (^determining whether the user 
has already or not yet logged in to the server" for the "first logic"). If the user is not yet 
authenticated ("not previously logged in to the server" for the "second logic"; See details in Fig. 
7B), the login form (See Fig. 5 A) is provided to the user and the received login information is 
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sent to the AAA server for performing authentication and authorization services, stored in the 
authentication caches and sent to the target server (^storing the information and forwarding to 
the server" for the 'fourth logic"; and if the user is already authenticated ("previously logged in 
to the server" for the "third logic"; See details in Fig. 7 A, steps 710-712), the user profile is 
stored and retrieved in the form of proxy-access list, and sent to the target server ^'retrieving the 
stored login information and forwarding to the server" for the "fourth logic") as disclosed in 
Col. 9, Line 1 through Col. 15, Line 55. 

Thus it would have been obvious to the person of ordinary skill in the art at the time of 
the invention was made to combine the invention as taught by Fuh, by implementing the 
firewall's authentication process with the use of authentication caches, Authentication proxy and 
filtering mechanism into the authentication process of the WAP-SP, i.e. the enhanced proxy 
server, as taught by Miloslavsky, with the motivation being to improve the ability to provide 
network access control and locally authenticate the client in reducing network traffic to the 
authentication server. 

Conclusion 

4. The prior art made of record and not relied upon is considered pertinent to applicant's 
disclosure. 

Howard et aL (U.S.6,584,505), Alegre et al. (U.S.6,199,1 13) and Rosenthal et al. 

(U.S. 5,737,701) are all cited to show devices and methods for improving the method for 
authentication in the communication architectures, which are considered pertinent to the claimed 
invention. 



ft 




Application/Control Number: 09/707,061 



Page 8 



Art Unit: 2661 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Tri H. Phan, whose telephone number is (703) 305-7444. The 
examiner can normally be reached on M-F (8:00-4:30). 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Douglas W. Olms can be reached on (703) 305-4703. 

Any response to this action should be mailed to: 



Hand-delivered responses should be brought to Crystal Park II, 2121 Crystal Drive, 
Arlington, VA, Sixth Floor. 

Any inquiry of a general nature or relating to the status of this application or proceeding 
should be directed to the Technology Center 2600 Customer Service Office, whose telephone 
number is (703) 305-3900. 
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or faxed to: 
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February 4, 2004 



